[Koha-bugs] [Bug 35445] New: OPAC registration verification triggered by email URL scanners
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu Nov 30 01:36:02 CET 2023
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35445
Bug ID: 35445
Summary: OPAC registration verification triggered by email URL
scanners
Change sponsored?: ---
Product: Koha
Version: master
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5 - low
Component: Patrons
Assignee: koha-bugs at lists.koha-community.org
Reporter: dcook at prosentient.com.au
QA Contact: testopia at bugs.koha-community.org
CC: gmcharlt at gmail.com, kyle.m.hall at gmail.com
I've noticed that Microsoft Safe Links is triggering
/cgi-bin/koha/opac-registration-verify.pl?token=X links.
This means that the end user ends up seeing "Registration invalid" because the
Microsoft link scanner has already verified the registration by hitting the
page with a GET.
We should update opac-registration-verify.pl so that it requires the user to
click a button for a POST form confirming their registration.
(NOTE: Since opac-registration-verify.pl performs a state change, it should be
a POST anyway.)
--
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list